What is the official website of Noma Security ?

The official website of Noma Security is https://noma.security.

What is Noma Security's cybersecurity risk score?

Noma Security has an AI-generated cybersecurity risk score of 750 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Noma Security experienced?

According to Rankiteo, Noma Security currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Noma Security been affected by any supply chain cyber incidents ?

According to Rankiteo, Noma Security has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Noma Security have SOC 2 Type 1 certification ?

According to Rankiteo, Noma Security is not certified under SOC 2 Type 1.

Does Noma Security have SOC 2 Type 2 certification ?

According to Rankiteo, Noma Security does not hold a SOC 2 Type 2 certification.

Does Noma Security comply with GDPR ?

According to Rankiteo, Noma Security is not listed as GDPR compliant.

Does Noma Security have PCI DSS certification ?

According to Rankiteo, Noma Security does not currently maintain PCI DSS compliance.

Does Noma Security comply with HIPAA ?

According to Rankiteo, Noma Security is not compliant with HIPAA regulations.

Does Noma Security have ISO 27001 certification ?

According to Rankiteo,Noma Security is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Noma Security operate in ?

Noma Security operates primarily in the Computer and Network Security industry.

How many employees does Noma Security have ?

Noma Security employs approximately 109 people worldwide.

Does Noma Security own any subsidiaries ?

Noma Security presently has no subsidiaries across any sectors.

How many LinkedIn followers does Noma Security have ?

Noma Security's official LinkedIn profile has approximately 8,735 followers.

What is the NAICS classification code for Noma Security ?

Noma Security is classified under the NAICS code 541514, which corresponds to Others.

Does Noma Security have a Crunchbase profile ?

Yes, Noma Security has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/noma-94e0.

Does Noma Security have a LinkedIn profile ?

Yes, Noma Security maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/noma-security.

How many cybersecurity incidents has Noma Security experienced ?

As of June 18, 2026, Rankiteo reports that Noma Security has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Noma Security have ?

Noma Security has an estimated 3,981 peer or competitor companies worldwide.

What types of cybersecurity incidents has Noma Security faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Noma Security

Boost Score +25 with badge (5 left)

750

/1000

Fair

775

/1000

Fair

Noma Security Vendor Cyber Rating & Cyber Score

noma.security

cb in

Add Your Compliance Badge

Noma Security is the agentic AI security platform giving enterprise organizations the confidence to rapidly build AI applications and adopt AI agents at scale. Noma Security uniquely provides cybersecurity teams with control of AI risk through continuous AI discovery and inventory, AI supply chain security, AI red teaming, and AI runtime protection to ensure compliance and risk mitigation. Backed by Ballistic Ventures, Glilot Capital, Cyber Club London, Databricks Ventures and SVCI, Noma Security is widely adopted by Fortune 500 customers and has been recognized by Gartner as a leading AI TRiSM solution.

Noma Security A.I CyberSecurity Scoring

Scoring History

Noma Security

Noma Security CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Noma Security

Vulnerability

12/2025

NOM1765375786

Loading…

A.I.

Noma Security Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Noma Security

Incidents vs Computer and Network Security Industry Avg (This Year)

No incidents recorded for Noma Security in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Noma Security in 2026.

Incident Types Noma Security vs Computer and Network Security Industry Avg (This Year)

No incidents recorded for Noma Security in 2026.

Incident History - Noma Security (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Noma Security Subsidiaries

Parent Company

Noma Security

Computer and Network Security

Website: https://noma.security

Company Size: 51-200 employees

No subsidiary data available for this company.

Loading…

Noma Security Similar Companies

CrowdStrike

crowdstrike.com

CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities. Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value. CrowdStrike: We stop breaches.

NETWORK-SECURITY-SOLUTIONS

n-security.com

## Our core business We manage linux / unix server infrastructures and build the efficient and secure networking environments using hardware cutting edge technologies suited to the needs of the project and the client. We believe in quality, opposed to quantity. Our company consists of highly qualified, experienced people, who share a common passion of both server and network infrastructure management. ## Our principles We stated basic principles, that we see as crucial in successful delivery of a stable and secure network environment project: • we tend to give client what he needs, not what he wants • we believe in open communication with client • client is not our enemy • "strict" is for corporations, we believe in "flexible" • teamwork - share victory, share defeat ## What we do best We specialise in linux / unix server and large network environments management. We think, that every need deserves a custom solution, as in most of cases it is cheaper and easier, than a ready solution with after-integration pain. We deliver individual solutions, that best fulfill need of our clients. The impact is put always on high quality and technological innovation of the project. ## Technologies we use We use a set of technologies we think are best suitable for big projects and those we have experience with, although we do not limit ourselves to them only. We constantly seek for new horizons, new trends and test them, so when they become mature, we can make use of them in our work. Network Security Solutions is always in search of new possibilities. ## Our offer Linux / Unix servers and network Router / Switch management, from big complicated environments to smaller ones. We offer hosting on our servers as well as the ability to manage servers from our customers. We provide 24/7/365 monitoring for customers whose services we manage.

Palo Alto Networks

paloaltonetworks.com

Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before. For more information, visit www.paloaltonetworks.com.

Loading…

NEWS

Noma Security CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 24, 2026 02:00 PM

Noma Security Appoints Ted Plumis as VP of Global Channel and Alliances to Accelerate Global Partner Strategy and Programs

PRNewswire/ -- Noma Security, the leading agentic AI security company, today announced the appointment of Ted Plumis to the company's...

Read Article

February 03, 2026 08:00 AM

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

Cybersecurity researchers have disclosed details of a now-patched security flaw impacting Ask Gordon, an artificial intelligence (AI)...

Read Article

December 11, 2025 08:00 AM

New cybersecurity guidance paves the way for AI in critical infrastructure

Global cybersecurity agencies have issued their first unified guidelines for safely integrating AI into critical infrastructure,...

Read Article

December 09, 2025 08:00 AM

Indirect Malicious Prompt Technique Targets Google Gemini Enterprise

Noma Security revealed it discovered a vulnerability in the Google Gemini Enterprise Edition that can be used to inject a malicious prompt.

Read Article

December 09, 2025 08:00 AM

New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks

A major security flaw, dubbed GeminiJack, was recently discovered by cybersecurity firm Noma Security in Google's Gemini Enterprise and the...

Read Article

December 09, 2025 08:00 AM

GeminiJack Vulnerability Exposes Google AI Security Flaw

The Noma Security report says the flaw was not a conventional bug but an architectural weakness in how the AI's Retrieval-Augmented...

Read Article

December 05, 2025 08:00 AM

The 10 Hottest Cybersecurity Startups Of 2025

Our picks for the hottest cybersecurity startups of 2025 include companies in key categories such as AI security and agentic-powered cyber...

Read Article

November 12, 2025 08:00 AM

Top Cybersecurity Startups in Israel

Israel's cybersecurity startup ecosystem is producing world-leading companies in threat detection, cloud security, and all things...

Read Article

October 30, 2025 07:00 AM

From Quantum Computing to Defense Tech: Meet Israel’s Most Promising Startups

Even at the height of an ongoing war, Israeli high-tech proves itself resilient to turbulence, steadfast in the face of historic crises...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-48777

SUMMARY

FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1-beta are vulnerable to Path Traversal through the publicPatchHandler in backend/http/public.go which joins user-controlled fromPath and toPath body fields with the trusted d.share.Path BEFORE the downstream sanitizer runs. Because filepath.Join collapses .. segments during the join, the sanitizer in resourcePatchHandler never sees the traversal and the move/copy/rename operates on a path outside the shared directory. The same root-cause pattern was patched for the bulk DELETE endpoint as CVE-2026-44542 (GHSA-fwj3-42wh-8673), but the PATCH handler with the identical pattern was not updated. A public share link with AllowModify=true is sufficient to exploit this. Anyone holding such a link can move, copy, or rename arbitrary files within the share owner's source root. This issue has been fixed in versions 1.3.3-stable and 1.4.2-beta.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: )

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-47750

SUMMARY

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the GLOBAL opcode handler. The issue was caused by missing validation when searching for newline-delimited fields. A crafted .ckpt file without the expected newline could cause the parser to use -1 as a copy length, resulting in immediate heap corruption. The attack requires the victim or application to load a .ckpt file from an untrusted source, such as a downloaded model from a model sharing site. The issue has been resolved in version master-584-0a7ae07. If developers are unable to immediately update their applications they can work around this issue by following these instructions: do not load .ckpt checkpoint files from untrusted sources, and prefer trusted model sources and safer formats such as .safetensors where possible.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-47747

SUMMARY

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode handler. The issue was caused by sign confusion on the opcode length field. A crafted .ckpt file could trigger memcpy with a very large length derived from a negative signed value, causing immediate heap corruption. The issue has been resolved in version master-584-0a7ae07. If developers are unable to immediately update their applications they can work around this issue by only loading .ckpt checkpoint files from trusted sources and preferring trusted model sources and safer formats such as .safetensors where possible.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-46448

SUMMARY

In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no Placement allocation.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 5.4)

cvss3

Base Score: 5.4

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Impact Score

2.5

Exploitability

2.8

REFERENCES

CVE-2026-22313

SUMMARY

The device has a webserver that exposes a REST API authenticated with a token on the management network. By exploiting an OS command injection vulnerability an authenticated attacker can send arbitrary commands to the device that are executed with administrative permissions by the underlying operating system.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 9.1)

cvss3

Base Score: 9.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Impact Score

Exploitability

2.3

REFERENCES

https://www.cvcn.gov.it/cvcn/cve/CVE-2026-22313

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…